|
 |
|
||||||||||||||||||||||||
|
Types
of IT Audits |
||||||||||||
| w |
IT Assessment & Network Security Review: a general assessment of the security processes for the network and all attached computing equipment and to identify computer security best practices. |  |
||||||||||
| w |
Wireless Security Review: an evaluation of system administrator duties, system configurations, and physical security for the wieless network infrastructure to identify the strengths and vulnerabilities of the wireless network configuration and implementation. | |||||||||||
| w |
Web Application Security Review: an assessment of the control environment and logical security that support web applications as well as the identification of potential security vulnerabilties within the web application itself. | |||||||||||
| w |
Application Controls Review: evaluation of control objectives of security, privacy, data integrity, effectiveness, and efficiency of the application in conjunction with policies, industry best practices, and federal legislation. | |||||||||||
| w |
Controls Self Assessment: A facilitated assessment to identify the gaps between current policies, procedures, systems, and computer operations requirements and best practices as encouraged by ISC and industry standards. Topics covered IT Control areas including IT Strategy, IT Project Management, Delivery and Support, Physical and Logical Security, Disaster Recovery and Business Contingency Planning, and Privacy. |
|
||||||||||
| w |
Software License Compliance Review: an assessment of computing workstations to validate that software is properly licensed. | |||||||||||
